dips/NetboxPS
1
0
Fork 0
mirror of https://github.com/benclaussen/NetboxPS.git synced 2025-12-13 18:02:29 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Merge pull request #12 from alagoutte/enhance-connect

Browse source 
Enhance Connection (Support -SkipCertificateCheck, Cipher options)
Indentation fixes

Fixes #8
This commit is contained in:
Ben Claussen 2021-07-22 10:16:00 -04:00 committed by GitHub
commit 1f66348205
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
13 changed files with 172 additions and 92 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

56
Functions/Helpers/InvokeNetboxRequest.ps1
View file

@ -1,4 +1,4 @@
<# <#
.NOTES .NOTES
=========================================================================== ===========================================================================
Created with: SAPIEN Technologies, Inc., PowerShell Studio 2020 v5.7.172 Created with: SAPIEN Technologies, Inc., PowerShell Studio 2020 v5.7.172
@ -18,44 +18,46 @@ function InvokeNetboxRequest {
( (
[Parameter(Mandatory = $true)] [Parameter(Mandatory = $true)]
[System.UriBuilder]$URI, [System.UriBuilder]$URI,
[Hashtable]$Headers = @{ [Hashtable]$Headers = @{
}, },
[pscustomobject]$Body = $null, [pscustomobject]$Body = $null,
[ValidateRange(0, 60)] [ValidateRange(0, 60)]
[uint16]$Timeout = 5, [uint16]$Timeout = 5,
[ValidateSet('GET', 'PATCH', 'PUT', 'POST', 'DELETE', 'OPTIONS', IgnoreCase = $true)] [ValidateSet('GET', 'PATCH', 'PUT', 'POST', 'DELETE', 'OPTIONS', IgnoreCase = $true)]
[string]$Method = 'GET', [string]$Method = 'GET',
[switch]$Raw [switch]$Raw
) )
$creds = Get-NetboxCredential $creds = Get-NetboxCredential
$Headers.Authorization = "Token {0}" -f $creds.GetNetworkCredential().Password $Headers.Authorization = "Token {0}" -f $creds.GetNetworkCredential().Password
$splat = @{ $splat = @{
'Method' = $Method 'Method' = $Method
'Uri' = $URI.Uri.AbsoluteUri # This property auto generates the scheme, hostname, path, and query 'Uri' = $URI.Uri.AbsoluteUri # This property auto generates the scheme, hostname, path, and query
'Headers' = $Headers 'Headers' = $Headers
'TimeoutSec' = $Timeout 'TimeoutSec' = $Timeout
'ContentType' = 'application/json' 'ContentType' = 'application/json'
'ErrorAction' = 'Stop' 'ErrorAction' = 'Stop'
'Verbose' = $VerbosePreference 'Verbose' = $VerbosePreference
} }
$splat += Get-NetboxInvokeParams
if ($Body) { if ($Body) {
Write-Verbose "BODY: $($Body | ConvertTo-Json -Compress)" Write-Verbose "BODY: $($Body | ConvertTo-Json -Compress)"
$null = $splat.Add('Body', ($Body | ConvertTo-Json -Compress)) $null = $splat.Add('Body', ($Body | ConvertTo-Json -Compress))
} }
$result = Invoke-RestMethod @splat $result = Invoke-RestMethod @splat
#region TODO: Handle errors a little more gracefully... #region TODO: Handle errors a little more gracefully...
<# <#
try { try {
Write-Verbose "Sending request..." Write-Verbose "Sending request..."
@ -69,7 +71,7 @@ function InvokeNetboxRequest {
Write-Verbose "RAW provided...throwing raw exception" Write-Verbose "RAW provided...throwing raw exception"
throw $_ throw $_
} }
Write-Verbose "Converting response to object" Write-Verbose "Converting response to object"
$myError = GetNetboxAPIErrorBody -Response $_.Exception.Response | ConvertFrom-Json $myError = GetNetboxAPIErrorBody -Response $_.Exception.Response | ConvertFrom-Json
} else { } else {
@ -77,27 +79,29 @@ function InvokeNetboxRequest {
$myError = $_ $myError = $_
} }
} }
Write-Verbose "MyError is $($myError.GetType().FullName)" Write-Verbose "MyError is $($myError.GetType().FullName)"
if ($myError -is [Exception]) { if ($myError -is [Exception]) {
throw $_ throw $_
} elseif ($myError -is [pscustomobject]) { } elseif ($myError -is [pscustomobject]) {
throw $myError.detail throw $myError.detail
} }
#> #>
#endregion TODO: Handle errors a little more gracefully... #endregion TODO: Handle errors a little more gracefully...
# If the user wants the raw value from the API... otherwise return only the actual result # If the user wants the raw value from the API... otherwise return only the actual result
if ($Raw) { if ($Raw) {
Write-Verbose "Returning raw result by choice" Write-Verbose "Returning raw result by choice"
return $result return $result
} else { }
else {
if ($result.psobject.Properties.Name.Contains('results')) { if ($result.psobject.Properties.Name.Contains('results')) {
Write-Verbose "Found Results property on data, returning results directly" Write-Verbose "Found Results property on data, returning results directly"
return $result.Results return $result.Results
} else { }
else {
Write-Verbose "Did NOT find results property on data, returning raw result" Write-Verbose "Did NOT find results property on data, returning raw result"
return $result return $result
} }

85
Functions/Setup/Connect-NetboxAPI.ps1
View file

@ -1,75 +1,94 @@
function Connect-NetboxAPI { function Connect-NetboxAPI {
<# <#
.SYNOPSIS .SYNOPSIS
Connects to the Netbox API and ensures Credential work properly Connects to the Netbox API and ensures Credential work properly
.DESCRIPTION .DESCRIPTION
Connects to the Netbox API and ensures Credential work properly Connects to the Netbox API and ensures Credential work properly
.PARAMETER Hostname .PARAMETER Hostname
The hostname for the resource such as netbox.domain.com The hostname for the resource such as netbox.domain.com
.PARAMETER Credential .PARAMETER Credential
Credential object containing the API key in the password. Username is not applicable Credential object containing the API key in the password. Username is not applicable
.PARAMETER Scheme .PARAMETER Scheme
Scheme for the URI such as HTTP or HTTPS. Defaults to HTTPS Scheme for the URI such as HTTP or HTTPS. Defaults to HTTPS
.PARAMETER Port .PARAMETER Port
Port for the resource. Value between 1-65535 Port for the resource. Value between 1-65535
.PARAMETER URI .PARAMETER URI
The full URI for the resource such as "https://netbox.domain.com:8443" The full URI for the resource such as "https://netbox.domain.com:8443"
.EXAMPLE .EXAMPLE
PS C:\> Connect-NetboxAPI -Hostname "netbox.domain.com" PS C:\> Connect-NetboxAPI -Hostname "netbox.domain.com"
This will prompt for Credential, then proceed to attempt a connection to Netbox This will prompt for Credential, then proceed to attempt a connection to Netbox
.NOTES .NOTES
Additional information about the function. Additional information about the function.
#> #>
[CmdletBinding(DefaultParameterSetName = 'Manual')] [CmdletBinding(DefaultParameterSetName = 'Manual')]
param param
( (
[Parameter(ParameterSetName = 'Manual', [Parameter(ParameterSetName = 'Manual',
Mandatory = $true)] Mandatory = $true)]
[string]$Hostname, [string]$Hostname,
[Parameter(Mandatory = $false)] [Parameter(Mandatory = $false)]
[pscredential]$Credential, [pscredential]$Credential,
[Parameter(ParameterSetName = 'Manual')] [Parameter(ParameterSetName = 'Manual')]
[ValidateSet('https', 'http', IgnoreCase = $true)] [ValidateSet('https', 'http', IgnoreCase = $true)]
[string]$Scheme = 'https', [string]$Scheme = 'https',
[Parameter(ParameterSetName = 'Manual')] [Parameter(ParameterSetName = 'Manual')]
[uint16]$Port = 443, [uint16]$Port = 443,
[Parameter(ParameterSetName = 'URI', [Parameter(ParameterSetName = 'URI',
Mandatory = $true)] Mandatory = $true)]
[string]$URI [string]$URI,
[Parameter(Mandatory = $false)]
[switch]$SkipCertificateCheck = $false
) )
if (-not $Credential) { if (-not $Credential) {
try { try {
$Credential = Get-NetboxCredential -ErrorAction Stop $Credential = Get-NetboxCredential -ErrorAction Stop
} catch { }
catch {
# Credentials are not set... Try to obtain from the user # Credentials are not set... Try to obtain from the user
if (-not ($Credential = Get-Credential -UserName 'username-not-applicable' -Message "Enter token for Netbox")) { if (-not ($Credential = Get-Credential -UserName 'username-not-applicable' -Message "Enter token for Netbox")) {
throw "Token is necessary to connect to a Netbox API." throw "Token is necessary to connect to a Netbox API."
} }
} }
} }
$null = Set-NetboxCredential -Credential $Credential $invokeParams = @{ SkipCertificateCheck = $SkipCertificateCheck; }
if ("Desktop" -eq $PSVersionTable.PsEdition) {
#Remove -SkipCertificateCheck from Invoke Parameter (not supported <= PS 5)
$invokeParams.remove("SkipCertificateCheck")
}
#for PowerShell (<=) 5 (Desktop), Enable TLS 1.1, 1.2 and Disable SSL chain trust
if ("Desktop" -eq $PSVersionTable.PsEdition) {
#Enable TLS 1.1 and 1.2
Set-NetboxCipherSSL
if ($SkipCertificateCheck) {
#Disable SSL chain trust...
Set-NetboxuntrustedSSL
}
}
switch ($PSCmdlet.ParameterSetName) { switch ($PSCmdlet.ParameterSetName) {
'Manual' { 'Manual' {
$uriBuilder = [System.UriBuilder]::new($Scheme, $Hostname, $Port) $uriBuilder = [System.UriBuilder]::new($Scheme, $Hostname, $Port)
} }
'URI' { 'URI' {
$uriBuilder = [System.UriBuilder]::new($URI) $uriBuilder = [System.UriBuilder]::new($URI)
if ([string]::IsNullOrWhiteSpace($uriBuilder.Host)) { if ([string]::IsNullOrWhiteSpace($uriBuilder.Host)) {
@ -77,35 +96,39 @@
} }
} }
} }
$null = Set-NetboxHostName -Hostname $uriBuilder.Host $null = Set-NetboxHostName -Hostname $uriBuilder.Host
$null = Set-NetboxCredential -Credential $Credential
$null = Set-NetboxHostScheme -Scheme $uriBuilder.Scheme $null = Set-NetboxHostScheme -Scheme $uriBuilder.Scheme
$null = Set-NetboxHostPort -Port $uriBuilder.Port $null = Set-NetboxHostPort -Port $uriBuilder.Port
$null = Set-NetboxInvokeParams -invokeParams $invokeParams
try { try {
Write-Verbose "Verifying API connectivity..." Write-Verbose "Verifying API connectivity..."
$null = VerifyAPIConnectivity $null = VerifyAPIConnectivity
} catch { }
catch {
Write-Verbose "Failed to connect. Generating error" Write-Verbose "Failed to connect. Generating error"
Write-Verbose $_.Exception.Message Write-Verbose $_.Exception.Message
if (($_.Exception.Response) -and ($_.Exception.Response.StatusCode -eq 403)) { if (($_.Exception.Response) -and ($_.Exception.Response.StatusCode -eq 403)) {
throw "Invalid token" throw "Invalid token"
} else { }
else {
throw $_ throw $_
} }
} }
Write-Verbose "Caching API definition" Write-Verbose "Caching API definition"
$script:NetboxConfig.APIDefinition = Get-NetboxAPIDefinition $script:NetboxConfig.APIDefinition = Get-NetboxAPIDefinition
if ([version]$script:NetboxConfig.APIDefinition.info.version -lt 2.8) { if ([version]$script:NetboxConfig.APIDefinition.info.version -lt 2.8) {
$Script:NetboxConfig.Connected = $false $Script:NetboxConfig.Connected = $false
throw "Netbox version is incompatible with this PS module. Requires >=2.8.*, found version $($script:NetboxConfig.APIDefinition.info.version)" throw "Netbox version is incompatible with this PS module. Requires >=2.8.*, found version $($script:NetboxConfig.APIDefinition.info.version)"
} }
$script:NetboxConfig.Connected = $true $script:NetboxConfig.Connected = $true
Write-Verbose "Successfully connected!" Write-Verbose "Successfully connected!"
#Write-Verbose "Caching static choices" #Write-Verbose "Caching static choices"
#$script:NetboxConfig.Choices.Circuits = Get-NetboxCircuitsChoices #$script:NetboxConfig.Choices.Circuits = Get-NetboxCircuitsChoices
#$script:NetboxConfig.Choices.DCIM = Get-NetboxDCIMChoices # Not completed yet #$script:NetboxConfig.Choices.DCIM = Get-NetboxDCIMChoices # Not completed yet
@ -114,6 +137,6 @@
##$script:NetboxConfig.Choices.Secrets = Get-NetboxSecretsChoices # Not completed yet ##$script:NetboxConfig.Choices.Secrets = Get-NetboxSecretsChoices # Not completed yet
##$script:NetboxConfig.Choices.Tenancy = Get-NetboxTenancyChoices ##$script:NetboxConfig.Choices.Tenancy = Get-NetboxTenancyChoices
#$script:NetboxConfig.Choices.Virtualization = Get-NetboxVirtualizationChoices #$script:NetboxConfig.Choices.Virtualization = Get-NetboxVirtualizationChoices
Write-Verbose "Connection process completed" Write-Verbose "Connection process completed"
} }

4
Functions/Setup/Get-NetboxCredential.ps1
View file

@ -2,10 +2,10 @@
[CmdletBinding()] [CmdletBinding()]
[OutputType([pscredential])] [OutputType([pscredential])]
param () param ()
if (-not $script:NetboxConfig.Credential) { if (-not $script:NetboxConfig.Credential) {
throw "Netbox Credentials not set! You may set with Set-NetboxCredential" throw "Netbox Credentials not set! You may set with Set-NetboxCredential"
} }
$script:NetboxConfig.Credential $script:NetboxConfig.Credential
} }

4
Functions/Setup/Get-NetboxHostname.ps1
View file

@ -1,11 +1,11 @@
function Get-NetboxHostname { function Get-NetboxHostname {
[CmdletBinding()] [CmdletBinding()]
param () param ()
Write-Verbose "Getting Netbox hostname" Write-Verbose "Getting Netbox hostname"
if ($null -eq $script:NetboxConfig.Hostname) { if ($null -eq $script:NetboxConfig.Hostname) {
throw "Netbox Hostname is not set! You may set it with Set-NetboxHostname -Hostname 'hostname.domain.tld'" throw "Netbox Hostname is not set! You may set it with Set-NetboxHostname -Hostname 'hostname.domain.tld'"
} }
$script:NetboxConfig.Hostname $script:NetboxConfig.Hostname
} }

11
Functions/Setup/Get-NetboxInvokeParams.ps1 Normal file
View file

@ -0,0 +1,11 @@
function Get-NetboxInvokeParams {
[CmdletBinding()]
param ()
Write-Verbose "Getting Netbox InvokeParams"
if ($null -eq $script:NetboxConfig.InvokeParams) {
throw "Netbox Invoke Parms is not set! You may set it with Set-NetboxInvokeParams -InvokeParams ..."
}
$script:NetboxConfig.InvokeParams
}

8
Functions/Setup/Set-NetboxCipherSSL.ps1 Normal file
View file

@ -0,0 +1,8 @@
Function Set-NetboxCipherSSL {
[Diagnostics.CodeAnalysis.SuppressMessageAttribute("PSUseShouldProcessforStateChangingFunctions", "")]
Param( )
# Hack for allowing TLS 1.1 and TLS 1.2 (by default it is only SSL3 and TLS (1.0))
$AllProtocols = [System.Net.SecurityProtocolType]'Ssl3,Tls,Tls11,Tls12'
[System.Net.ServicePointManager]::SecurityProtocol = $AllProtocols
}

16
Functions/Setup/Set-NetboxCredential.ps1
View file

@ -1,32 +1,32 @@
function Set-NetboxCredential { function Set-NetboxCredential {
[CmdletBinding(DefaultParameterSetName = 'CredsObject', [CmdletBinding(DefaultParameterSetName = 'CredsObject',
ConfirmImpact = 'Low', ConfirmImpact = 'Low',
SupportsShouldProcess = $true)] SupportsShouldProcess = $true)]
[OutputType([pscredential])] [OutputType([pscredential])]
param param
( (
[Parameter(ParameterSetName = 'CredsObject', [Parameter(ParameterSetName = 'CredsObject',
Mandatory = $true)] Mandatory = $true)]
[pscredential]$Credential, [pscredential]$Credential,
[Parameter(ParameterSetName = 'UserPass', [Parameter(ParameterSetName = 'UserPass',
Mandatory = $true)] Mandatory = $true)]
[securestring]$Token [securestring]$Token
) )
if ($PSCmdlet.ShouldProcess('Netbox Credentials', 'Set')) { if ($PSCmdlet.ShouldProcess('Netbox Credentials', 'Set')) {
switch ($PsCmdlet.ParameterSetName) { switch ($PsCmdlet.ParameterSetName) {
'CredsObject' { 'CredsObject' {
$script:NetboxConfig.Credential = $Credential $script:NetboxConfig.Credential = $Credential
break break
} }
'UserPass' { 'UserPass' {
$script:NetboxConfig.Credential = [System.Management.Automation.PSCredential]::new('notapplicable', $Token) $script:NetboxConfig.Credential = [System.Management.Automation.PSCredential]::new('notapplicable', $Token)
break break
} }
} }
$script:NetboxConfig.Credential $script:NetboxConfig.Credential
} }
} }

4
Functions/Setup/Set-NetboxHostName.ps1
View file

@ -1,13 +1,13 @@
function Set-NetboxHostName { function Set-NetboxHostName {
[CmdletBinding(ConfirmImpact = 'Low', [CmdletBinding(ConfirmImpact = 'Low',
SupportsShouldProcess = $true)] SupportsShouldProcess = $true)]
[OutputType([string])] [OutputType([string])]
param param
( (
[Parameter(Mandatory = $true)] [Parameter(Mandatory = $true)]
[string]$Hostname [string]$Hostname
) )
if ($PSCmdlet.ShouldProcess('Netbox Hostname', 'Set')) { if ($PSCmdlet.ShouldProcess('Netbox Hostname', 'Set')) {
$script:NetboxConfig.Hostname = $Hostname.Trim() $script:NetboxConfig.Hostname = $Hostname.Trim()
$script:NetboxConfig.Hostname $script:NetboxConfig.Hostname

15
Functions/Setup/Set-NetboxInvokeParams.ps1 Normal file
View file

@ -0,0 +1,15 @@
function Set-NetboxInvokeParams {
[CmdletBinding(ConfirmImpact = 'Low',
SupportsShouldProcess = $true)]
[OutputType([string])]
param
(
[Parameter(Mandatory = $true)]
[array]$InvokeParams
)
if ($PSCmdlet.ShouldProcess('Netbox Invoke Params', 'Set')) {
$script:NetboxConfig.InvokeParams = $InvokeParams
$script:NetboxConfig.InvokeParams
}
}

19
Functions/Setup/Set-NetboxUnstrustedSSL.ps1 Normal file
View file

@ -0,0 +1,19 @@
Function Set-NetboxUntrustedSSL {
[Diagnostics.CodeAnalysis.SuppressMessageAttribute("PSUseShouldProcessforStateChangingFunctions", "")]
Param( )
# Hack for allowing untrusted SSL certs with https connections
Add-Type -TypeDefinition @"
using System.Net;
using System.Security.Cryptography.X509Certificates;
public class TrustAllCertsPolicy : ICertificatePolicy {
public bool CheckValidationResult(
ServicePoint srvPoint, X509Certificate certificate,
WebRequest request, int certificateProblem) {
return true;
}
}
"@
[System.Net.ServicePointManager]::CertificatePolicy = New-Object -TypeName TrustAllCertsPolicy
}

26
Functions/Setup/Support/Get-NetboxAPIDefinition.ps1
View file

@ -1,4 +1,4 @@
<# <#
.NOTES .NOTES
=========================================================================== ===========================================================================
Created with: SAPIEN Technologies, Inc., PowerShell Studio 2020 v5.7.174 Created with: SAPIEN Technologies, Inc., PowerShell Studio 2020 v5.7.174
@ -14,16 +14,16 @@
function Get-NetboxAPIDefinition { function Get-NetboxAPIDefinition {
[CmdletBinding()] [CmdletBinding()]
param () param ()
#$URI = "https://netbox.neonet.org/api/docs/?format=openapi" #$URI = "https://netbox.neonet.org/api/docs/?format=openapi"
$Segments = [System.Collections.ArrayList]::new(@('docs')) $Segments = [System.Collections.ArrayList]::new(@('docs'))
$URIComponents = BuildURIComponents -URISegments $Segments -ParametersDictionary @{'format' = 'openapi'} $URIComponents = BuildURIComponents -URISegments $Segments -ParametersDictionary @{'format' = 'openapi' }
$URI = BuildNewURI -Segments $URIComponents.Segments -Parameters $URIComponents.Parameters -SkipConnectedCheck $URI = BuildNewURI -Segments $URIComponents.Segments -Parameters $URIComponents.Parameters -SkipConnectedCheck
InvokeNetboxRequest -URI $URI -Timeout 10 InvokeNetboxRequest -URI $URI -Timeout 10
} }

8
Functions/Setup/Support/SetupNetboxConfigVariable.ps1
View file

@ -4,17 +4,17 @@
( (
[switch]$Overwrite [switch]$Overwrite
) )
Write-Verbose "Checking for NetboxConfig hashtable" Write-Verbose "Checking for NetboxConfig hashtable"
if ((-not ($script:NetboxConfig)) -or $Overwrite) { if ((-not ($script:NetboxConfig)) -or $Overwrite) {
Write-Verbose "Creating NetboxConfig hashtable" Write-Verbose "Creating NetboxConfig hashtable"
$script:NetboxConfig = @{ $script:NetboxConfig = @{
'Connected' = $false 'Connected' = $false
'Choices' = @{ 'Choices' = @{
} }
'APIDefinition' = $null 'APIDefinition' = $null
} }
} }
Write-Verbose "NetboxConfig hashtable already exists" Write-Verbose "NetboxConfig hashtable already exists"
} }

8
Functions/Setup/Support/VerifyAPIConnectivity.ps1
View file

@ -1,10 +1,10 @@
function VerifyAPIConnectivity { function VerifyAPIConnectivity {
[CmdletBinding()] [CmdletBinding()]
param () param ()
$uriSegments = [System.Collections.ArrayList]::new(@('extras')) $uriSegments = [System.Collections.ArrayList]::new(@('extras'))
$uri = BuildNewURI -Segments $uriSegments -Parameters @{'format' = 'json'} -SkipConnectedCheck $uri = BuildNewURI -Segments $uriSegments -Parameters @{'format' = 'json' } -SkipConnectedCheck
InvokeNetboxRequest -URI $uri InvokeNetboxRequest -URI $uri
} }